AppArmor mediation of applications that use DBus

DBus aware applications currently cannot be properly mediated with AppArmor. While a confined application can be disallowed access to the DBus system bus, this is too coarse-grained. Furthermore, because AppArmor does not currently mediate IPC (and therefore the abstract unix domain sockets that DBus uses in Ubuntu for the per-user session bus), applications currently confined by AppArmor are allowed to talk to any application with an interface on the session bus.

The completed blueprint should provide a working implementation for DBus to use AppArmor to mediate message delivery (ie, what a sending application can talk to, and a receiving application can respond to). This requires kernel, AppArmor userspace and DBus changes. Message content mediation is out of scope for this blueprint.